# Post-Brexit Binding Corporate Rules Generator

> Source: https://bryter.com/de/use-cases/binding-corporate-rules-generator/

The tool is designed to help Law Firms and Corporations automate the certification process of the respective Binding Corporate Rules with the lead supervisory authority after Brexit.

#### Background

As part of the EU-UK Trade & Co-operation Agreement, organizations with approved Binding Corporate Rules (BCRs) under the General Data Protection Regulation (GDPR), authorized by a supervisory authority other than the UK Information Commissioners Officer (ICO), are required to resubmit their BCRs by the end of the bridge period (31st June 2020). Similarly, the European Data Protection Board (EDPB) issued a statement last year, urging organizations with BCRs assigned to the ICO to apply to a new lead supervisory authority within the European Economic Area (EEA). The new lead supervisory authority will have to issue a new approval decision following an opinion from the European Data Protection Board (EDPB). The GDPR does not formalize special requirements companies can use to identify and apply to the lead supervisory authority. As outlined by the Data Protection Working Party in WP264 rev. 1, the application should however provide the proposed BCR lead with: all appropriate information that justifies the proposal, the nature and general structure of the processing activities in the EU with particular attention to the place where decisions are made, the location and nature of affiliates in the EU, the number of employees concerned, the means and purposes of the processing, the places from where the transfers to third countries do take place, and the third countries to which those data are transferred. With all this information required, the approval process usually takes a minimum of 12 months.

The Post-Brexit Binding Corporate Rules Generator provides for an automated solution to streamline the information submission procedure to the supervisory authority. With BRYTER, law firms and businesses can build a reliable checklist, including knowledge management features to guide the user through the ICO and EDPB post-Brexit guidance. By securely collecting the user input information and using [document automation](https://bryter.com/applications/document-automation/) to generate an automated BCRs application document, an efficient and time-saving process can be achieved. EU regulators are currently still debating the impact of Schrems II on BCRs, with guidance likely to come soon. The Post-Brexit Binding Corporate Rules Generator allows users to update any checklist elements and knowledge management features instantaneously. Through further integration with third-party providers like DocuSign, BRYTER can offer a centralized BCRs application management experience.